Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/p8UVnfVlbg66OSC_K9zAPF1EX84.roa
File: p8UVnfVlbg66OSC_K9zAPF1EX84.roa (raw, json)
Hash identifier: POs6+tXKIqSsKZe+7IS56LZDsVAF7zLw/YEszVmN/hI=
Subject key identifier: A7:C5:15:9D:F5:65:6E:0E:BA:39:20:BF:2B:DC:C0:3C:5D:44:5F:CE
Certificate issuer: /CN=94e59d245d150dc38c4896263dcbdcbbd67470a7
Certificate serial: 01839CEA5E2044E30E5D2D4E0CDFA211698C
Authority key identifier: 94:E5:9D:24:5D:15:0D:C3:8C:48:96:26:3D:CB:DC:BB:D6:74:70:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/p8UVnfVlbg66OSC_K9zAPF1EX84.roa
Signing time: Mon 03 Oct 2022 08:15:48 +0000
ROA not before: Mon 03 Oct 2022 08:15:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 194.107.160.0/24 maxlen: 24
194.107.161.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:9c:ea:5e:20:44:e3:0e:5d:2d:4e:0c:df:a2:11:69:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94e59d245d150dc38c4896263dcbdcbbd67470a7
Validity
Not Before: Oct 3 08:15:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a7c5159df5656e0eba3920bf2bdcc03c5d445fce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:44:9b:4a:00:91:18:da:47:55:40:b4:1d:a6:
40:e8:90:60:3f:cf:4f:b6:9a:f0:86:2e:2e:0b:81:
40:c9:4a:54:0d:c3:9b:b5:36:45:e2:35:89:a4:fa:
76:2d:47:bd:34:53:ed:8a:26:3c:aa:8e:07:c7:1c:
84:21:ae:1c:cf:98:6a:a0:55:65:f7:e5:be:45:a2:
30:e4:b6:a0:88:3a:76:df:a3:6f:0f:fb:34:e1:03:
0f:28:7f:00:16:4a:82:b0:bf:bc:04:9b:f8:b8:13:
c7:89:e8:76:eb:a6:59:94:bb:0c:f1:0a:5b:40:b2:
fc:cd:af:5c:e7:98:d1:9e:cc:57:dd:5d:17:6a:84:
22:2b:66:47:f5:4e:57:80:be:c5:e8:05:00:6f:ca:
fc:85:57:57:ab:fb:62:c0:53:97:87:a1:a0:7e:36:
d3:93:94:52:fe:b6:73:bf:ba:4a:68:24:8d:ea:1c:
53:59:aa:89:78:f6:c0:25:d0:99:89:40:68:da:ad:
22:2c:8b:74:5c:8a:6c:1b:82:c4:90:2b:e9:34:f2:
14:eb:8d:b6:d0:0c:29:c5:76:74:46:dc:cb:e4:02:
82:eb:67:5e:0e:45:15:45:78:60:b0:96:59:ff:77:
bc:6d:fe:92:5a:27:b2:c3:ca:a7:1f:3b:16:d5:0a:
a6:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:C5:15:9D:F5:65:6E:0E:BA:39:20:BF:2B:DC:C0:3C:5D:44:5F:CE
X509v3 Authority Key Identifier:
keyid:94:E5:9D:24:5D:15:0D:C3:8C:48:96:26:3D:CB:DC:BB:D6:74:70:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/p8UVnfVlbg66OSC_K9zAPF1EX84.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.107.160.0/23
Signature Algorithm: sha256WithRSAEncryption
02:7b:cd:27:44:bb:4f:59:d8:a9:db:b9:6c:4d:5c:24:4b:c2:
a8:6b:01:1d:be:fd:f0:2e:5d:51:f9:b9:25:8b:97:22:69:f9:
16:f4:f9:6f:14:1c:ec:a6:e1:f1:a0:58:b6:0a:09:af:15:86:
8d:19:5f:c6:f9:bc:a6:e7:08:22:8e:71:4b:b9:93:50:3f:76:
b9:9c:a4:f2:19:32:6c:4e:19:4c:b0:34:37:5e:aa:c5:4e:d6:
c5:d6:a0:fe:35:e5:ef:f2:90:60:c6:37:c0:62:8f:24:3b:e9:
9a:46:6c:84:47:eb:52:1f:50:61:20:9d:0f:82:a2:90:34:11:
ed:94:77:4b:f9:e0:12:e7:26:e1:57:df:67:f9:d3:9d:96:e2:
1a:c0:ce:aa:ef:e6:00:34:8f:34:30:8b:53:82:9b:41:62:d8:
fe:dc:39:11:77:54:d7:57:f8:da:fa:36:c7:81:68:ab:31:c0:
9b:ad:41:2d:2e:26:cc:20:c5:37:9b:06:a1:f4:91:9b:d5:1c:
2b:67:1d:9b:d4:6d:f4:a1:c6:1f:7d:e4:31:e1:b1:87:0d:e9:
f3:62:6d:0c:41:22:eb:20:80:45:06:90:40:6a:a4:a4:20:2c:
ec:f3:81:66:97:86:4e:ef:28:a8:ca:e3:29:79:d9:19:af:c1:
c2:c6:95:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:12 2024 by rpki-client on console-fra.rpki-client.org